$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.mft File: 5qz09ZSkQ4-Jeu2qtKPTjIZcziI.mft (raw, json) Hash identifier: i0CKHEFRLf1kel2AchChFhHAuxSW9isHTZtnl1tddLg= Subject key identifier: 64:AF:10:66:C9:00:47:D5:44:77:DA:CE:1A:93:BB:C0:47:5D:C4:F6 Authority key identifier: E6:AC:F4:F5:94:A4:43:8F:89:7A:ED:AA:B4:A3:D3:8C:86:5C:CE:22 Certificate issuer: /CN=A91B6395/serialNumber=E6ACF4F594A4438F897AEDAAB4A3D38C865CCE22 Certificate serial: 0789 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.mft Manifest number: 077F Signing time: Thu 12 Jun 2025 21:09:15 +0000 Manifest this update: Thu 12 Jun 2025 21:09:14 +0000 Manifest next update: Thu 19 Jun 2025 21:09:14 +0000 Files and hashes: 1: 5qz09ZSkQ4-Jeu2qtKPTjIZcziI.crl (hash: pvoFnPZScjNpSPIbYBKqk3icRjv7Qv0tg7U+gOK8PNw=) 2: 09664BCE144D11EBA0AF3555C4F9AE02.roa (hash: rdUSXytbXM84CWenGOGoRob5nCuOJZnNVIkvDgmUqS4=) 3: 08CE75A6144D11EBA0AF3555C4F9AE02.roa (hash: Ey+1oSHacaQI23omTKC4i8oGovoWsEThpx7tq0kzMuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.crl rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 21:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1929 (0x789) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6395, serialNumber=E6ACF4F594A4438F897AEDAAB4A3D38C865CCE22 Validity Not Before: Jun 12 21:09:14 2025 GMT Not After : Jun 19 21:09:14 2025 GMT Subject: CN=684b41fb-af25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e8:d8:25:ec:bb:0d:c7:86:b7:9a:c1:f8:62: 5b:40:32:82:26:bb:bc:81:97:d7:9e:5a:96:96:b8: 8a:26:8a:84:c6:52:23:78:ab:fd:9c:78:10:31:10: 3d:02:63:09:73:08:32:b5:0d:7b:42:76:aa:8b:8c: 43:f1:c0:59:ab:cf:8c:64:69:53:9f:24:7a:9c:23: fa:28:a4:fb:06:38:87:b6:30:d1:c4:58:fe:06:2e: 80:46:d8:f4:04:fa:23:28:83:84:19:fa:0f:53:cb: b5:1f:2b:c4:8e:3d:5b:ba:09:8e:60:3e:59:45:eb: b2:d6:04:f5:a2:2b:3f:f5:c0:17:fa:74:47:28:b7: 16:15:2b:a8:72:97:58:ee:8c:2a:10:db:dc:5b:7e: c7:7b:ee:84:e1:9f:10:eb:de:c2:9a:d2:71:a7:ca: 39:38:e7:f5:06:e2:cc:a1:ce:bc:63:b3:8c:7e:e2: 43:c3:cf:ec:c1:d4:ff:98:f7:91:e4:29:e3:75:60: 10:19:95:bf:eb:61:a0:5e:fa:4d:ed:47:76:62:a3: 25:a3:bb:92:fc:ce:87:48:99:87:b7:47:fc:b5:33: f5:74:3d:67:bd:14:8e:c2:de:bf:0f:8a:60:a2:ec: f1:22:88:08:7e:e7:aa:9e:36:76:0d:a5:75:29:bd: ee:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:AF:10:66:C9:00:47:D5:44:77:DA:CE:1A:93:BB:C0:47:5D:C4:F6 X509v3 Authority Key Identifier: keyid:E6:AC:F4:F5:94:A4:43:8F:89:7A:ED:AA:B4:A3:D3:8C:86:5C:CE:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:38:12:a3:0f:47:d3:e4:88:23:70:68:7f:15:b7:d7:08:ff: 7d:0e:36:4c:68:c3:8e:c6:7d:77:10:90:a1:2a:5c:aa:4e:b3: 39:70:ed:71:d2:c0:0e:f4:ee:3a:37:b7:9c:14:47:77:7d:4f: 0f:18:0e:c6:83:9d:0d:d0:01:a5:ff:6e:2d:ff:74:af:c2:73: 5e:3f:bc:d7:9e:40:92:dd:fa:af:da:10:13:42:39:18:a9:3b: ac:bb:fe:e0:ac:b7:22:77:67:41:ce:12:8b:48:b8:cf:44:09: 92:35:07:2a:4d:bb:d4:4f:4c:f5:c8:7d:ce:83:f2:85:e2:ca: a0:d0:17:04:2d:41:1e:ee:b9:4c:d3:b0:09:b0:de:0b:71:b6: 60:65:6c:d0:b5:1b:4d:12:b0:c4:a1:00:70:e2:4f:3f:5f:ea: 77:94:96:f2:48:b6:94:f4:67:fb:ca:d1:8b:b5:d8:8c:33:3c: b3:b3:33:d1:e6:74:25:8e:7b:ba:dd:ce:ec:c5:2c:f2:85:48: 60:0c:c1:d2:82:e2:f2:96:af:2a:7a:ce:c7:77:3a:63:c0:f6: eb:86:8a:aa:0e:be:34:2d:a8:6b:05:4b:0c:e7:a8:e4:08:89: 33:a8:25:6f:0b:e1:04:5b:cd:a8:75:10:77:ad:85:f0:13:68: 42:db:a6:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYzOTUxMTAvBgNVBAUTKEU2QUNGNEY1OTRBNDQzOEY4OTdBRURBQUI0QTNEMzhD ODY1Q0NFMjIwHhcNMjUwNjEyMjEwOTE0WhcNMjUwNjE5MjEwOTE0WjAYMRYwFAYD VQQDEw02ODRiNDFmYi1hZjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+jYJey7DceGt5rB+GJbQDKCJru8gZfXnlqWlriKJoqExlIjeKv9nHgQMRA9 AmMJcwgytQ17Qnaqi4xD8cBZq8+MZGlTnyR6nCP6KKT7BjiHtjDRxFj+Bi6ARtj0 BPojKIOEGfoPU8u1HyvEjj1bugmOYD5ZReuy1gT1ois/9cAX+nRHKLcWFSuocpdY 7owqENvcW37He+6E4Z8Q697CmtJxp8o5OOf1BuLMoc68Y7OMfuJDw8/swdT/mPeR 5CnjdWAQGZW/62GgXvpN7Ud2YqMlo7uS/M6HSJmHt0f8tTP1dD1nvRSOwt6/D4pg ouzxIogIfueqnjZ2DaV1Kb3uDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGSvEGbJ AEfVRHfazhqTu8BHXcT2MB8GA1UdIwQYMBaAFOas9PWUpEOPiXrtqrSj04yGXM4i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjM5NS9EQzQ1NjU3ODE0 NEExMUVCOTQwNzY2NTJDNEY5QUUwMi81cXowOVpTa1E0LUpldTJxdEtQVGpJWmN6 aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVxejA5WlNrUTQtSmV1MnF0S1BUaklaY3ppSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjM5NS9EQzQ1NjU3ODE0NEExMUVCOTQwNzY2NTJDNEY5QUUwMi81cXowOVpTa1E0 LUpldTJxdEtQVGpJWmN6aUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPOBKjD0fT5IgjcGh/FbfXCP99DjZMaMOOxn13EJChKlyqTrM5cO1x 0sAO9O46N7ecFEd3fU8PGA7Gg50N0AGl/24t/3SvwnNeP7zXnkCS3fqv2hATQjkY qTusu/7grLcid2dBzhKLSLjPRAmSNQcqTbvUT0z1yH3Og/KF4sqg0BcELUEe7rlM 07AJsN4LcbZgZWzQtRtNErDEoQBw4k8/X+p3lJbySLaU9Gf7ytGLtdiMMzyzszPR 5nQljnu63c7sxSzyhUhgDMHSguLylq8qes7HdzpjwPbrhoqqDr40LahrBUsM56jk CIkzqCVvC+EEW82odRB3rYXwE2hC26Yx -----END CERTIFICATE-----Generated at Sat Jun 14 19:20:36 2025 by rpki-client